Dec 25, 2025Ravie LakshmananData Breach / Financial Crime Recent findings from TRM Labs reveal that encrypted vault backups compromised in the 2022 LastPass data breach have been exploited by cybercriminals to access crypto assets, particularly due to the use of weak master passwords. This criminal activity has reportedly persisted into…
Shortly after cybersecurity researchers raised warnings about two significant vulnerabilities in the SaltStack configuration framework, an ongoing campaign has already begun exploiting these flaws, targeting organizations such as LineageOS, Ghost, and DigiCert. The vulnerabilities, identified as CVE-2020-11651 and CVE-2020-11652, permit attackers to execute arbitrary code on remote servers operating within…
The emergence of black markets for illegal goods, including drugs and weapons, began on the dark web over a decade ago, leveraging cryptocurrencies and anonymity tools like Tor. At that time, these innovations facilitated the execution of vast, untraceable online transactions valued in the billions. Fast forward to 2025, and…
Recent investigations by mobile security experts have unveiled extensive vulnerabilities within Firebase databases used by numerous iOS and Android applications. These deficiencies have exposed over 100 million data records, including unencrypted passwords, user identifiers, geographical data, and in certain instances, sensitive financial information related to banking and cryptocurrency transactions. As…
In a striking incident highlighting ongoing cybersecurity threats, the FBI has apprehended a Russian national accused of attempting to infiltrate a U.S. company’s computer network through dubious means. The individual, identified as Egor Igorevich Kriuchkov, 27, was arrested in Los Angeles after reportedly offering $1 million to an employee of…
Recently, the United States government unveiled criminal charges against seven hackers, including five from China and Malaysia, alongside two from Iran and Russia. These developments illustrate a continued focus on global cyber threats as part of the U.S. Department of Justice’s efforts to combat cybersecurity risks. Danil Potekhin and Dmitrii…
Recent investigations indicate that despite concerted efforts to disrupt the TrickBot malware operations, its creators are adapting and evolving their tactics. A report from cybersecurity firm Netscout reveals that the authors of TrickBot have ported elements of their malicious code to Linux, broadening their potential target base. Initially identified in…
Articles on Blockchain & Cryptocurrency, Cryptocurrency Fraud, and Fraud Management & Cybercrime In Focus: Anthropic Raises Alarm on Autonomous AI Exploits Targeting Blockchain Written by Rashmi Ramesh (@rashmiramesh_) • December 4, 2025 Image: Shutterstock Weekly, Information Security Media Group summarizes significant cybersecurity events in the realm of digital assets. This…
Lee Chan-jin, Governor of the Financial Supervisory Service, speaks at a press conference in Yeouido, Seoul, on December 1. [FSS] In the wake of significant data breaches affecting major companies like Upbit and Coupang, South Korean financial authorities are advocating for legal reforms aimed at bolstering the security frameworks of…
